Securing CMF MONITOR

The MainView environment works with your IBM RACF, CA Technologies CA-TOP SECRET, or CA Technologies CA-ACF2 security package to control access to view data.

Although MainView Security Reference Manual fully explains how to use the security views and how they interact with your security package, there are a few things that you should understand first:

  • Security for CMF MONITOR Online and for the cross-system data APIs is implemented through two views: SERDEF and SERDEFL.
  • When you display SERDEF, you will see that CMF MONITOR Online has defined a separate resource rule for:
    • View data in general
    • Data provided by each view table
    • CMF XDS API actions

  • A view table is a family of views that display the same type of data. To find out which views are associated with a particular view table, see Part 2, 'Windows-mode security' in the MainView Security Reference Manual.

    Note

    Individual views cannot be secured. That is, when you grant or deny access to a view table, you grant or deny access to all views that belong to that table.

  • With MainView security, either you can add rules for resources to your security package, using the default class and entity names for the resource, or you can change the class and entity names to conform to rules that you have already defined.

    Example

    Suppose you have rules defined to your security package to control access to a resource identified by class DATASET and entity name SYS1.PROCLIB. You want to use the same rule to control access to MainView Address Space Table Data. Enter the command CHAnge beside the Address Space Table Data entity on SERDEF, and then change the class to DATASET and change the entity to SYS1.PROCLIB. MainView uses your SYS1.PROCLIB rules for Address Space Table Data.

 

Tip: For faster searching, add an asterisk to the end of your partial query. Example: cert*